What is claimed is: 

1 1 . A method for generating a group digital signature wherein each of a group of individuals 

2 may sign a message M to create a group digital signature S, wherein M corresponds to a nimiber 

3 representative of a message, 0<M<n-l,nisa composite number formed from the product of a 

4 number k of distinct random prime factors pi»p2». . .♦Pk> k is an integer greater than 2, and S ^ 

5 (mod n), comprising the steps of: 

6 a first individual in a group performing a first partial digital signature subtask on a 

7 message M using a first individual private key to produce a first partial digital signature Si; 

8 at least a second individual in said group performing a second partial digital signature 

9 subtask on said message M using a second individual private key to produce a second partial 
IM digital signature S2; and 

tt combining said partial digital signature results including said results Si and S2 to produce 

y the group digital signature S corresponding to said message M. 

zi 2. A method for generating a group digital signature as recited in claim 1 wherein said step 

-2 of combining said results associated with said first and second partial digital signatures includes: 
f3 combining said results in accordance with a Chinese Remainder Algorithm. 

O 3. A method for generating a group digital signature as recited in claim 1 wherein each of 

' 2 said individual private keys includes, 

3 an associated individual modulus ni that is a number formed as a product of one or 

4 more of said k prime factors of said group modulus n, and 

5 an associated individual private exponent di that is determined based on a selected 

6 public group exponent e, and also based on the prime factors of said associated individual 

7 modulus ni- 

14. A method for generating a group digital signature as recited in claim 3 wherein each of 

2 said individual private exponents di is determined as a number congruent to the inverse of said 

3 public group exponent e, modulo the Euler Totient fimction of said associated individxial 

4 modulus Ui. 
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15. A method for generating a group digital signature as recited in claim 1 wherein the first 

2 individual is assigned a first number mi of the k prime factors of said group modulus n and the 

3 second individual is assigned a second number m2 of the k prime factors of said group modulus 

4 n, and wherein: 

5 said first individual private key includes, 

6 an associated individual modulus ni that is determined as the product of a number 

7 mi of distinct prime factors of said group modulus n, and 

8 an associated individual private exponent di that is determined based on a selected 

9 public key exponent e and based on the mi prime factors of said associated individual 

1 0 modulus in accordance with 

11 di = e"^ mod ( Y[ (Pj 1 X wherein pj p^j represent the first number mi of said distinct 
y prime factors. 

'i . s 

fl 6. A method for generating a group digital signature as recited in claim 3 wherein said first 

;2 partial digital signature Si is generated based on the relationship 

:3 Si = M ''■(modni). 

3E_2 

f| 7. A method for generating a group digital signature as recited in claim 1 wherein said fiirst 

;! individual private key is created based on associated prime factors pa and pb of the group 

3 modulus n, said first individual private key including, 

4 an individual modulus ni that is a composite nimiber formed as the product Pa • Pb 

5 of said associated primes, and 

6 an associated individual private exponent di that is determined based on a selected 

7 public key exponent e and said associated primes pa and pb in accordance with 

8 di = e^mod((pa-l)(pb-l)). 

18. A method for generating a group digital signature as recited in claim 7 wherein said first 

2 partial digital signature Si is generated based on the relationship, 

3 Si = M^'(modni). 
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19. A method for generating a group digital signature as recited in claim 2 wherein the group 

2 comprises z individuals whose private key moduU ni are relatively prime, wherein said step of 

3 combining results of said sub-tasks is performed in accordance with the relations 



4 Yi = Yi-i + ((Si -Yi-i) (wi"^ mod ni) mod Ui) • Wi mod n, 

5 wherein2<i <z, and 

6 S =Yk, Yi=Si, and w^ =Ylnj, 



1 10. A method for generating a group digital signature as recited in claim 2 wherein the group 

2 comprises z individuals whose private key moduli n, are relatively prime, wherein said step of 

3 combining results of said sub-tasks is performed in accordance with the relations 

1,=. z 

J4 S = 2^ 5,. (w-'^ mod mod «, 

1% wherein 

iJL 11. A method of creating and assigning individual private keys to each member of at least 

l| one group of individuals, wherein the individuals in each group may use their assigned keys to 

□ sign a message M to collectively create a group digital signature S associated with m entity that 

3 includes all of the groups, wherein M corresponds to a number representative of a message, 0 < 

5 M < n-1 , n is a composite number formed from the product of a total number k of distinct 

6 random primes pi»p2«. . ••pk, k is an integer greater than 2, and S = (mod n), and wherein each 

7 such group of individuals collectively control all of the primes, but wherein no single one of the 

8 individuals controls all of the prime factors pi, P2, . . . Pk, comprising: 



9 assigning at least one of the total nimiber k of prime numbers pi , P2, . • .pk to each of a 

10 plurality of members of each of at least one group, wherein all of the prime numbers assigned to 

11 the individuals within each group are distinct; 

12 defining a unique individual modulus associated with each of the individuals formed as 

13 the product of the prime numbers assigned to the individual; and 

14 defining a imique individual private key for each of the individuals based on the 

1 5 associated individual modulus formed for the individual; 
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1 6 whereby each of the individual private keys may be used to create an associated 

1 7 individual partial digital signature, wherein the individual partial digital signatures of the 

1 8 members of a group may be combined to forni the group digital signature S, and wherein at least 

19 one of the partial digital signatures cannot be combined across different groups to form the group 

20 digital signature S. 



1 12, A method of creating and assigning individual private keys as recited in claim 10 wherein 

2 the keys are created and assigned in accordance with a symmetric distribution of the k prime 

3 factors of n, wherein each of the individual members of a group is assigned an individual private 

4 key based on a modulus formed as a product of m distinct prime factors, and wherein m < k. 

|l 13. A method of creating and assigning partial digital signature keys as recited in claim 1 1 

3 wherein the number of combinations of the k prime factors taken m at a time dictates the number 

y of distinct individual private keys that may be created based on the total number k prime factors, 

f§ and wherein the number of combinations of k prime factors taken m at a time is expressed in 

M accordance with 



A = 



k\ 



m!(k-m)! 

g and wherein said individual private keys are organized into g = A/z == A»m/k groups 

Ji comprising z = k/m members in each group. 

1 14. A method of creating and assigning individual private keys as recited in claim 1 0 wherein 

2 the keys are created and assigned in accordance with an asymmetric distribution of the k prime 

3 factors of n, wherein at least one of the individual members of a group is assigned an individual 

4 private key based on a modulus formed as a product of mi distinct prime factors, and wherein at 

5 least one other member of said group are assigned individual private keys each based on a 

6 modulus formed as a product of distinct prime factors, wherein mi < m2 < k. 

1 15. A method of creating and assigning individual private keys as recited in claim 13 wherein 

2 the keys are created and assigned in accordance with an asymmetric distribution of the k prime 

3 factors of n, wherein at least one private key is assigned across more than one group. 
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1 16. An apparatus for generating a group digital signature wherein each of a group of 

2 individuals may sign a message M to create a group digital signature S, wherein M corresponds 

3 to a number representative of a message, 0<M<n-l,nisa composite number formed from the 

4 product of a number k of distinct random prime factors pi*p2». . -•Pk, k is an integer greater than 2, 

5 and S = (mod n), comprising: 

6 a secure key generation facility; 

7 a plurality of individual secure private key storage and signing entities; and 

8 a secure group signature combining entity. 

1 17. An apparatus for generating a group digital signature as recited in claim 14, wherein the 

2 secure key generation facility and secure group signature combining entity are combined within 
B a common security boundary. 

ft 18. An apparatus for generating a group digital signature as recited in claim 14, including: 
tU means for transferring individual private keys generated by the secure key 

3 generation facility into secure tokens for issuance to the assigned individual users of said 

M private signing keys, and 

W means for securely transferring associated secret group combining parameters 

f I from the secure key generation facility to the secure combining entity. 

1 19. An apparatus as recited in claim 14 wherein each of said tokens is a smart card. 
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